Primary

Context

PicaJet FX Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in PicaJet FX version 2.6.5. This vulnerability allows local attackers to crash the application by entering oversized input into registration fields. Specifically, a 6000-byte buffer can be pasted into the 'Registration Name' and 'Registration Key' fields through the 'Help' menu's 'Register PicaJet' dialog, leading to an application crash.

Impact

Exploitation of this vulnerability causes the application to crash, disrupting any ongoing tasks or processes within PicaJet FX.

Reproduction

To reproduce this vulnerability, first create a text file named 'exploit.txt' and write a 6000-byte buffer into it. After saving the file, open PicaJet FX and navigate to the 'Help' menu. Select 'Register PicaJet...' and paste the contents of 'exploit.txt' into the 'Registration Name' and 'Registration Key' fields. Click 'OK' to trigger the application crash.

Added: Apr 26, 2026, 10:40 PM

Updated: Apr 26, 2026, 10:40 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

6.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

6.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PicaJet FX Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating